Google Chrome impacted by new Magellan 2.0 vulnerabilities

Given the nature of these vulnerabilities, please review your environment and make sure your version of Chrome is up-to-date.

https://www.zdnet.com/article/google-chrome-impacted-by-new-magellan-2-0-vulnerabilities/?mid=1

Latest Chrome update plugs a zero-day hole

I particularly like the title from the linked article from “The Register” – “Put down the cat, coffee, beer pint, martini, whatever you’re holding, and make sure you’ve updated Chrome (unless you enjoy being hacked)” .  It is imperative that we all patch these types of zero day vulnerabilities, especially once they are active in the wild.  Review and patch accordingly!

https://www.theregister.co.uk/2019/03/07/google_chrome_zero_day/

https://www.welivesecurity.com/2019/03/07/latest-chrome-update-plugs-zero-day-hole/

Safer browsing coming soon to MacOS Chrome users

It’s about time Google decided to care about those of us who choose to browse the Internet from a Mac.  In all seriousness, long gone are the days when Mac users can live under the security blanket of obscurity, fueled by the assumption that no one bothers to write viruses for MacOS.  The threat of infection is real and so should be the tools we use to defend against it.

https://nakedsecurity.sophos.com/2018/03/07/safer-browsing-coming-soon-to-macos-chrome-users/

Anatomy of a Chrome for Android bug: the mixed-up world of mobile browsers

These types of compromises associated with minor vulnerabilities and drive-by downloads are difficult to defend against in the absence of awareness training.  Please take the time to educate your users on download best practices.  We cannot continue to allow users to be desensitized to the error messages and warnings that come along with most browsers.

Take the time to properly configure certificates for local machines and properly manage user expectations when browsing.

https://nakedsecurity.sophos.com/2016/11/11/anatomy-of-a-chrome-for-android-bug-the-mixed-up-world-of-mobile-browsers/